Configure and Install a Jumpoint for Linux Systems

Setup of a Jumpoint on a remote network is a multi-step process that includes configuring from the /login administrative interface, downloading the installer, and running the installation wizard.

Configure

Buttons to select Jump, Jumpoint, and Jumpoint Management - Add

  1. From the /login administrative interface, go to Jump > Jumpoint.
  2. Click Add.

 

Panel to add Jumpoint details

  1. Create a unique name to help identify this Jumpoint. This name should help users locate this Jumpoint when they need to start a session with a computer on the same network.
  2. Set a code name for integration purposes. If you do not set a code name, PRA creates one automatically.
  3. Add comments to help identify this Jumpoint.
  4. Select the Jumpoint Platform. Options are Windows and Linux. Once the Jumpoint has been created, this option cannot be changed.
  5. Leave the Disabled box unchecked.
  6. Check the Clustered box, if appropriate.

 

A clustered Jumpoint allows you to install multiple, redundant nodes of the same Jumpoint on different host systems. If this option is selected, the Jumpoint will be available as long as at least one of the installed nodes is online. This provides redundancy, preventing the failure of all Jump Items associated with the failure of a single, standalone Jumpoint, and improves load balancing across the system. All configuration of clustered Jumpoints is done in /login, with no local configuration available during the install. Once created, a clustered Jumpoint cannot be converted to standalone, nor a standalone Jumpoint converted to clustered.

Linux Jumpoints can only be used for RDP and SSH/Telnet sessions, allowing for credential injection from user or vault, as well as RemoteApp functionality and Shell Jump filtering. Clustered Jumpoints can only add new nodes of the same OS. You cannot mix Windows and Linux nodes.

 

Jumpoint clustered nodes must be installed on hosts residing in the same local area network.

  1. If you want users to be able to connect to SSH-enabled and Telnet-enabled network devices through this Jumpoint, check Enable Shell Jump Method.
  2. From the Jumpoint edit page, you may authorize users to start sessions through this Jumpoint. After you have created the Jumpoint, you can also grant access to groups of users from Users & Security > Group Policies.
  3. Save the configuration. Your new Jumpoint should now appear in the list of configured Jumpoints.

Once you have installed the Jumpoint, PRA populates the table with the hostname of the system it is installed on, as well as with that system's public and private IP addresses. This information can help you locate the Jumpoint's host system in case you need to change the Jumpoint's configuration.

Download

Now that your Jumpoint is configured, you need to install the Jumpoint on a single system in the remote network you wish to access. This system serves as the gateway for Jump sessions with other computers on the remote network. You can either install the Jumpoint directly on the host or email the installer to a user at the remote system. If this is to be a clustered Jumpoint, you can add nodes later.

Linux Jumpoint Download

  1. From the table, find the appropriate Jumpoint and click the link to download the installer file.
  1. If you have access to the system you want to use as the Jumpoint host, you can run the installation file immediately.
  2. Otherwise, save the file and then email it to the remote user to deploy on the system that will serve as the Jumpoint host.

If you need to change the Jumpoint's host system, click Redeploy. This uninstalls the Jumpoint from its current location and sets the download links as available. You can then install the Jumpoint on a new host. The new Jumpoint replaces the old one for any existing Jump shortcuts that are associated with it. The new Jumpoint does not copy over the configuration from the old Jumpoint and must be reconfigured during installation.

Install

  1. Once the installer file is on the remote system, use a command interface to install the file and specify any desired parameters. The Jumpoint must be installed within 7 days of downloading it.
    • Install the Jumpoint in a location to which you have write permission, using --install-dir <path>. You must have permission to write to this location, and the path must not already exist. Any additional parameters must also be specified at this time, as described below.
      sh ./bomgar-jpt-{uid}.bin --install-dir /home/username/jumpoint
    • If you wish to install under a specific user context, you can pass the --user <username> argument. The user must exist and have rights to the directory where the Jumpoint is being installed. If you do not pass this argument, the Jumpoint installs under the user context that is currently running.

      sh ./bomgar-jpt-{uid}.bin --install-dir /home/username/jumpoint --user jsmith

 

We do not recommend installing the Jumpoint under the root context. If you attempt to install when the current user is root, you receive a warning message and are required to pass --user <username> to explicitly specify the user that the process.

  1. After installing the Jumpoint, you must start its process.
    /home/username/jumpoint/init-script start

    This init script also accepts the stop, restart, and status arguments. You can use ./init-script status to make sure the Jumpoint is running.

 

You must also arrange for init-script start to run at boot in order for the Jumpoint to remain available whenever the system restarts.

  1. To remove the files, use the uninstall.sh script included in the installation

Clustered Jumpoint Setup: Add Nodes

The steps for creating a clustered Jumpoint in /login are the same as for a standalone, except that once you have created the clustered Jumpoint, you can add nodes to it. At least one node needs to be installed for the Jumpoint to be online.

Click the Add Node link to download the installer file.

If you have access to the system you want to use as the Jumpoint host, you can run the installation file immediately.

Otherwise, save the file and then email it to the remote user to deploy on the system that will serve as the Jumpoint host.

Jumpoint Cluster Add Node

Follow the prompts and install the node. Note that there are no configuration screens. Once installed, the clustered Jumpoint shows the new node(s) installed, associated information, such as the public and private IP addresses, whether a node is online or offline, as well as the number of nodes installed.

Nodes can be deleted but cannot be individually edited. In the access console, none of the nodes are visible; only the Jumpoint under which they are installed is visible. Nodes function as redundant connection points. When a user needs to use the Jumpoint, Privileged Remote Access selects one of the nodes at random. At least one node must be online for the Jumpoint to work.